rpms / suricata

Clone
Source Code
GIT

Files

  1.   413d4ac31021b90d1343bf1a039b2f2308b0134d
  2.   suricata-4.1.5-service-2.patch
Blob Blame History Raw 
diff -urp suricata-4.1.5.orig/etc/suricata.service.in suricata-4.1.5/etc/suricata.service.in
--- suricata-4.1.5.orig/etc/suricata.service.in	2019-09-25 17:41:26.689250441 -0400
+++ suricata-4.1.5/etc/suricata.service.in	2019-09-25 17:41:58.386247040 -0400
@@ -13,5 +13,11 @@ ExecStartPre=/bin/rm -f @e_rundir@surica
 ExecStart=/sbin/suricata -c @e_sysconfdir@suricata.yaml --pidfile @e_rundir@suricata.pid $OPTIONS
 ExecReload=/bin/kill -USR2 $MAINPID
 
+### Security Settings ###
+MemoryDenyWriteExecute=true
+LockPersonality=true
+ProtectControlGroups=true
+ProtectKernelModules=true
+
 [Install]
 WantedBy=multi-user.target
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.